JavaScript is required to for searching.
Skip Navigation Links
Exit Print View
System Administration Guide: Security Services     Oracle Solaris 11 Express 11/10
search filter icon
search icon

Document Information


Part I Security Overview

1.  Security Services (Overview)

Part II System, File, and Device Security

2.  Managing Machine Security (Overview)

3.  Controlling Access to Systems (Tasks)

4.  Virus Scanning Service (Tasks)

5.  Controlling Access to Devices (Tasks)

6.  Using the Basic Audit Reporting Tool (Tasks)

7.  Controlling Access to Files (Tasks)

Part III Roles, Rights Profiles, and Privileges

8.  Using Roles and Privileges (Overview)

9.  Using Role-Based Access Control (Tasks)

Using RBAC (Task Map)

Configuring and Using RBAC (Task Map)

Configuring and Using RBAC

How to Plan Your RBAC Implementation

How to Make root User Into a Role

How to Create a Role

How to Assign a Role

How to Create a Privileged User

How to Audit Roles

How to Assume a Role

How to Obtain Administrative Rights

How to Restrict an Administrator to Explicitly Assigned Rights

Managing RBAC (Task Map)

Managing RBAC

How to Change the Password of a Role

How to Enable a User to Use Own Password to Assume a Role

How to Change the Properties of a Role

How to Create or Change a Rights Profile

How to Troubleshoot RBAC and Privilege Assignment

How to Change the RBAC Properties of a User

How to Add RBAC Properties to Legacy Applications

10.  Role-Based Access Control (Reference)

11.  Privileges (Tasks)

12.  Privileges (Reference)

Part IV Oracle Solaris Cryptographic Services

13.  Oracle Solaris Cryptographic Framework (Overview)

14.  Oracle Solaris Cryptographic Framework (Tasks)

15.  Oracle Solaris Key Management Framework

Part V Authentication Services and Secure Communication

16.  Using Authentication Services (Tasks)

17.  Using PAM

18.  Using SASL

19.  Using Solaris Secure Shell (Tasks)

20.  Solaris Secure Shell (Reference)

Part VI Kerberos Service

21.  Introduction to the Kerberos Service

22.  Planning for the Kerberos Service

23.  Configuring the Kerberos Service (Tasks)

24.  Kerberos Error Messages and Troubleshooting

25.  Administering Kerberos Principals and Policies (Tasks)

26.  Using Kerberos Applications (Tasks)

27.  The Kerberos Service (Reference)

Part VII Oracle Solaris Auditing

28.  Oracle Solaris Auditing (Overview)

29.  Planning for Oracle Solaris Auditing

30.  Managing Oracle Solaris Auditing (Tasks)

31.  Oracle Solaris Auditing (Reference)



Managing RBAC (Task Map)

The following task map points to procedures for customizing role-based access control (RBAC) after RBAC has been initially implemented.

For Instructions
Change the role password
An authorized user or role changes the password of another role.
Enable a user to supply the user's password to assume a role.
Modifies a user's security attributes to make the user's password authenticate the user to a role.
Enable a user to supply the user's password to use a rights profile.
Enables the user's password to authenticate when using a rights profile.
Modify the assigned rights of a role
Modifies the capabilities (privileges, privileged commands, profiles, or authorizations) of a role.
Create or change rights profiles
Creates a rights profile. Or modifies the authorizations, privileged commands, or supplementary rights profiles in a rights profile.
Change a user's administrative capabilities
Adds a role, a rights profile, an authorization, or privileges to a regular user.
Secure legacy applications
Turns on the set ID permissions for legacy applications. Scripts can contain commands with set IDs. Legacy applications can check for authorizations, if appropriate.

These procedures manage the elements that are used in RBAC. For user management procedures, refer to Chapter 1, Managing User Accounts and Groups (Overview), in System Administration Guide: Basic Administration.